gitlab-org--gitlab-foss/app/policies/issue_policy.rb

class IssuePolicy < IssuablePolicy
  def issue
    @subject
  end

  def rules
    super

    if @subject.confidential? && !can_read_confidential?
      cannot! :read_issue
      cannot! :admin_issue
      cannot! :update_issue
      cannot! :read_issue
    end
  end

  private

  def can_read_confidential?
    return false unless @user
    return true if @user.admin?
    return true if @subject.author == @user
    return true if @subject.assignee == @user
    return true if @subject.project.team.member?(@user, Gitlab::Access::REPORTER)

    false
  end
end
port issues to Issu{able,e}Policy 2016-08-16 18:10:34 +00:00			`class IssuePolicy < IssuablePolicy`
			`def issue`
			`@subject`
			`end`

			`def rules`
			`super`

			`if @subject.confidential? && !can_read_confidential?`
			`cannot! :read_issue`
			`cannot! :admin_issue`
			`cannot! :update_issue`
			`cannot! :read_issue`
			`end`
			`end`

			`private`

			`def can_read_confidential?`
			`return false unless @user`
			`return true if @user.admin?`
			`return true if @subject.author == @user`
			`return true if @subject.assignee == @user`
			`return true if @subject.project.team.member?(@user, Gitlab::Access::REPORTER)`
newline before default return 2016-08-30 22:55:37 +00:00
port issues to Issu{able,e}Policy 2016-08-16 18:10:34 +00:00			`false`
			`end`
			`end`